Oh! Sweet Nuthin'
ShmooCon Live Streaming Video - https://www.shmoocon.org/video.html
sex.py 2.0
Extract valid e-mail addresses from all kind of files. With sex.py you can extract a list of emails from a defaced text file or even scan recursively through a directory and all its content.
A scenario could be to download a website to your local hard-drive and use sex.py to harvest all email addresses. Once you have an output-file including some email addresses you can also use sex to verify the accounts. Works great with MetaGooFil! ;)
Highlights:
- Switch the search pattern to match valid email addresses
- Scan a single file or multiple files form a directory (including subdirectories)
- Sort the addresses of the output file
- Remove duplicated emails
- Change output mode
- exclude files by their extension
- verify email accounts
- python (tested with python 2.6.2)
- dnspython
- improved CLI
- -y verify email accounts
- -e exclude extensions
- various code improvements
- fancier output
You can set default values by editing the source file.
verbose = n
0 no output
1 print the email addresses e.g. if you want to pipe them
2 output email addresses, current file and grand total
sort = n
0 write email addresses to destination file as found
1 sort addresses in alphabetical order
remove_duplicates = n
0 capture all addresses
1 remove duplicated emails
exclude_ext = ["x","y",...]
x,y = file extensions you want to exclude
Usage:
sex.py [options] <source> <destination>
sex.py [-lqsr] [-e ext1,ext2] <source> <destination>
sex.py -y <file>
source: absolute path to a file or directory
destination: path to write the output file
file: output-file including a list of email addresses
Options:
-l display email addresses only
-q silent output mode
-s sort addresses in alphabetical order
-r remove duplicated emails
-e EXTENSION exclude files by extension
-y FILE verify emails from file
Example:
$ python metagoofil.py -d microsoft.com -l 20 -f all -o micro.html -t micro-files
...
[ 19/21 ] http://research.microsoft.com/pubs/79881/siggraph2008.ppt
[ 20/21 ] http://www.microsoft.com/hk/msdn/download/MSDN_011214.ppt
[ 21/21 ] http://research.microsoft.com/pubs/73115/wsdm09_dcm.ppt
[+] Process finished
$ python sex.py -sr -e xls micro-files/ addresses.txt
>> FILE: micro-files/03SecEnh.doc
>> FOUND: exchdocs@microsoft.com
>> FOUND: exchdocs@microsoft.com
>> FILE: micro-files/5176.cff.pdf
>> FILE: micro-files/advreport.doc
>> FILE: micro-files/Age_of_Mythology_Strategy_Sample_Chapter.pdf
!> EXCLUDE: micro-files/australia.xls
>> FILE: micro-files/Benchmarks.ppt
...
>> Extraced email addresses: 43
$ python sex.py -y addresses.txt
NSWish@microsoft.com,mail.messaging.microsoft.com,550,5.7.1 Service unavailable; Client host [86.32.184.116] blocked using Spamhaus PBL, mail from IP banned; To request removal from this list see http://www.spamhaus.org/lookup.lasso.
....
!> FAILED: 2.WV
....
$ äähhh i think they don`t like me
Download:
sex-2.0.1.tar.gz
yaev.py - yet another email verifier
Verify emails by checking the "RCPT TO" return code from the SMTP server.
Hints:
- The output is separated by commas, so you can easily import it to another application (e.g. MS Excel).
- Create an address list by using the Smashing Email eXtractor!
- Failed checks are added at the bottom (! <domain>)
- python (tested with python 2.6.2)
- dnspython
yaev.py <file>
file: absolute path to email-address list
Example:
$ cat addresses.txt
...
wolfgang.schaeuble@wk.bundestag.de
gm.schulz@gmail.com
jan.sipocz@gmail.com
brigitte.kopinits@gmail.com
r.buchmann@amag.at
annimarie.schaffer@gmail.com
iggy.popovic@gmail.com
erich.gabis@gmail.com
Kovacs.maria4@gmail.com
andreas.schimon@gmail.com
barbarajungreithmair@gmail.com
michael.gabis@gmail.com
$ ./yaev.py addresses.txt > checked_emails.txt
$ cat checked_emails.txt
...
wolfgang.schaeuble@wk.bundestag.de,mail1.dbtg.de,554,5.7.1 Service unavailable; Client host [83.187.177.131] blocked using zen.spamhaus.org; http://www.spamhaus.org/query/bl?ip=83.187.177.131
gm.schulz@gmail.com,alt2.gmail-smtp-in.l.google.com,250,2.1.5 OK 6si6034pxi.95
jan.sipocz@gmail.com,alt2.gmail-smtp-in.l.google.com,250,2.1.5 OK 13si2013478pxi.35
brigitte.kopinits@gmail.com,alt2.gmail-smtp-in.l.google.com,250,2.1.5 OK 27si2008921pxi.56
r.buchmann@amag.at,srxx0055.amag.at,503,5.0.0 Need MAIL before RCPT
annimarie.schaffer@gmail.com,alt2.gmail-smtp-in.l.google.com,250,2.1.5 OK 35si2021257pxi.2
iggy.popovic@gmail.com,alt2.gmail-smtp-in.l.google.com,250,2.1.5 OK 37si2019611pxi.5
erich.gabis@gmail.com,alt2.gmail-smtp-in.l.google.com,250,2.1.5 OK 2si2010789pxi.52
Kovacs.maria4@gmail.com,alt2.gmail-smtp-in.l.google.com,250,2.1.5 OK 42si2017013pxi.17
andreas.schimon@gmail.com,alt2.gmail-smtp-in.l.google.com,250,2.1.5 OK 9si2018016pxi.13
barbarajungreithmair@gmail.com,alt2.gmail-smtp-in.l.google.com,250,2.1.5 OK 40si2003494pxi.87
michael.gabis@gmail.com,alt2.gmail-smtp-in.l.google.com,250,2.1.5 OK 37si2019846pxi.5
!gmx.de
Download:
yaev.py
exlex - passive host harvester
Highlights:
- Import existing IP list
- Check input for valid IP Address
- Timestamp when host was discovered
- Sniff in promiscuous mode
- Counter
exlex_win.py --help
Example:
exlex_win.py -i existing_ip_list.txt hosts_log.txt
Requirements:
- Windows Platform (tested on Windows XP SP3)
- python 2.6.x (tested on python 2.6.2)
1. Install py2exe
2. Create a setup.py:
from distutils.core import setup
import py2exe
setup(console=["exlex_win.py"],zipfile=None)
3. Build your executeable:
python setup.py py2exe --bundle 1
For more information on building an executable read the py2exe Tutorial.
Download:
exlex_win.py
sex.py
Extract valid e-mail addresses from all kind of files. With sex.py you can extract a list of emails from a defaced text file or even scan recursively through a directory and all its content. A scenario could be to download a website to your local hard-drive and use sex.py to harvest all email addresses.
Highlights:
- Switch the search pattern to match valid email addresses
- Scan a single file or multiple files form a directory (including subdirectories)
- Sort the addresses of the output file
- Except duplicates
- Change verbosity level
To configure Smashing Email eXtractor edit the variables in the source file.
verbose = n
0 no output
1 print the email addresses e.g. if you want to pipe them
2 output email addresses, current file and grand total
sort = n
0 write email addresses to destination file as found
1 sort addresses in alphabetical order
remove_duplicates = n
0 capture all addresses
1 remove duplicated emails
Usage:
sex.py <source> <destination>
source: absolute path to a file or directory
destination: path to write the output file
Example 1:
$ wget --mirror -p --restrict-file-names=windows --html-extension --convert-links -v http://www.wolfgang-schaeuble.de/
$ python sex.py www.wolfgang-schaeuble.de/ addresses.txt
>> File: www.wolfgang-schaeuble.de/Audioplayer/swfobject.js
...
>> File: www.wolfgang-schaeuble.de/fileadmin/user_upload/PDF/050625nordkurier.pdf
Margareta.Moertl@cducsu.de
...
>> Extraced email addresses: 10
$ cat addresses.txt
Bruno.Kahl@cducsu.de
Margareta.Moertl@cducsu.de
aki-108@gmx.de
forum@welt.de
heike.nieske@cducsu.de
poststelle@bmi.bund.de
sebastian.pieper@cducsu.de
wolfgang.schaeuble.ma02@bundestag.de
wolfgang.schaeuble@bundestag.de
wolfgang.schaeuble@wk.bundestag.de
Example 2:
$ python sex.py shitty_formatted_list.txt shiny_email_list.txt
Download:
sex.py
keytweeter - a twitter keylogger
original forum post:
http://www.openframeworks.cc/forum/viewtopic.php?f=12&t=2227
twitter url:
http://twitter.com/keytweeter
Download - Binary & Readme
keytweeter_bin.zip
Download - Source
keytweeter_src.zip
phrack 66 released!
Be prepared for some awesome hacking stuff and nice ascii art. Here are the table of contents:
- Introduction
- Phrack Prophile on The PaX Team
- Phrack World News
- Abusing the Objective C runtime
- Backdooring Juniper Firewalls
- Exploiting DLmalloc frees in 2009
- Persistent BIOS infection
- Exploiting UMA : FreeBSD kernel heap exploits
- Exploiting TCP Persist Timer Infiniteness
- Malloc Des-Maleficarum
- A Real SMM Rootkit Core
- Alphanumeric RISC ARM Shellcode
- Power cell buffer overflow
- Binary Mangling with Radare
- Linux Kernel Heap Tampering Detection
- Developing MacOs X Rootkits
- How close are they of hacking your brain
Update:
Uploaded a tar.gz version of phrack 66 to my server.
phrack66.tar.gz (local mirror)
hackthiszine #7
Hack This Zine Issue #7: Hack the Gibson released! Get it and spread it!
The topics:
Meta
- Letters
- News in the Briefs
- Hacking your GPS (by Kuroishi)
- Alternative PHP include vulnerabilities (by Flatline)
- Obfuscating IP addresses (by Flatline)
- Sucking Signal (by Sally)
- Hardware Hacking (by Frenzy)
- On Using Technology to Dismantle the Industrial Beat (by Anonymous)
- Oscar Grant and Copwatch 2.0 (by Flatline)
hacking founts #1
Hacker's Hideaway
Flyninja Dot Net
Null Area
proge.net
DarkTrix Arena
0x3a
thoughtcrime.org (Damn! I love this site!)
I caught this links via progenic. Keep it up guys!
Urban Hacking
Some hackers turned a building into a big urban space invaders game. Watch the clip:
Now show us how you did it, so we can demonstrate these guys at the ISS (International Space Station) some Ping-Pong with the Planet! You guys are totally awesome! I love it!
Python Code Examples
ActiveState Code - covers a lot various stuff
Vaults of Parnassus - categorized python resources
Darkc0de - scanner, fuzzer, exploits, brute forcer, logger,...
Packetstormsecurity - several python projects
R00tsecurity - security forum
pypi - Python Package Index
directory.google.com - Python Google Directory
hackthiszine #6
I want to recommend you reading HackThisZine. It covers many topics related to activism and technology. The latest issue is #6 which was released on 08/19/2008, I know this isn`t brand new but this should not always be the main reason of blogging.
Sometimes I try to keep up with this fast spreading, fast forgotten meaningless news but mostly I`m to lazy to copy & past all of this shit, there are more important things in live I want to spend my time with. I feel a little bit sorry and want to apologize of being so damn slow. :) I hope I can provide you quality instead of fast food news. Now, back to the zine.
HackThisZine Issue 6 - The topics:
Political Articles: Views and Opinionated Articles
- On the Necessity of Direct Action (by Nomenumbra)
- Hacking Freight Trains Part 2 (by Haifleisch)
- Berkeley Tree Sit (by frenzy)
- SF Community Colo Project (by ryan)
- Callout for electronic action at the DNC & RNC (by hackbloc)
- 39 Lashes a poem (by Ardeo)
- RNC Comms Analysis (by CGB)
Hacking / Technology: Articles for Digital Resistance
- Cryptographic Education for the Militant Activist Part 1 (by Nomenumbra)
- Crabgrass: A Social Network for the Rest of Us (by Flatline)
- The PE File format and its Darkside Part 2 (by Nomenumbra)
- Full Disk Encryption Attacks (by hackbloc)
- All Your Face(book) Are Belong To Us (by flatline)
- Communications Systems and Technology (by Impact)
- Anonymity with Wireless Networking (by Impact)
First Recorded Usage of "Hacker"
Impressing this is over four decades ago! Hard to believe what consequences such a publication has. What I found very interesting is the fact that “hacker” is also related to black-hats since this article. At the moment we know that the word “hacker” is extremely ambiguous. But that`s not bad. I also have my own interpretation of the word, a very positive one, which is worth to aspire.
Information found on:
cyberpunkreview.com
duartes.org
Cybertek Zine
Once again, the Doktor made me call attention to a Cyberpunk-Zine called: Cybertek. You think the end of the world is near? Maybe you are right! Then this zine is exactly right for you. It covers various stuff about hacking, phreaking, plenty tech tipps, survival techniques...etc. Everything you need to know to dare this cruel new world. I was really impressed about the fact that it`s actually active scine 1990! Great style, that`s what I call dandy. So who claims that the underground is dead? The heart is still beating.
habitats of interests:
W I R E D T O P 10
streettech.com - cybertek review
Cybertek Issue #25